Manager, Risk & Compliance Services; IT

JOB DESCRIPTION – MANAGER, RISK AND COMPLIANCE SERVICES (IT)

Reports to:

Director, Principal and/or Partner

As part of Invictus’ Risk and Compliance advisory team, this is an exciting opportunity to lead risk-based advisory projects for a diverse client base. The Manager, Risk and Compliance Advisory, IT (the “
Manager / Senior Manager ”) is part of an advisory team that helps create value through governance, risk management and compliance services. The Manager will be responsible to plan, execute, and report on projects including audits of internal controls over financial reporting, compliance reviews, IT project assurance, and other advisory projects.

Management Responsibility: As a member of the Risk and Compliance team, leads IT advisory and audit projects, including the development of project plans and budgets, management of staff in the execution of advisory projects, and reporting of project results to clients, while exercising project management skills to ensure all projects are completed on target.

Service Orientation: Establishes professional relationships with client personnel, building trust in our advisory capacity with them. Maintains a strong service orientation, ensuring open and effective communication with clients. As part of client engagements, provides value-added, practical and pragmatic recommendations and improvement strategies.

Quality Assurance: Ensures maintenance of high standards and quality of IT advisory projects through the preparation and review of working papers and reports.

Staff Management & Development: Contributes to the establishment of a clear definition of responsibility for each member of the team, the ongoing management, mentorship and support of staff, and effective employee performance management. The Manager will contribute to the team-based office culture, promoting open and transparent communication with all team members.

Experience: Minimum five years progressively responsible experience in IT consulting or auditing, in public practice or with a publicly traded company.

Education: A Bachelor’s Degree in Management Information Systems or similar is required. A CISA or CIA designation is strongly preferred.

Technical Expertise: Proficiency in risk-based auditing techniques and risk assessment, and an understanding of Sarbanes-Oxley 404, National Instrument 52-109 and internal control frameworks. A strong understanding of the relationships between IT general controls, application controls, use of service organizations and their impacts on internal control over financial reporting. Experience with various cloud environments and technologies, experience with common operating systems and database management systems, experience with ERPs such as SAP, SAGE and Microsoft Dynamics, and knowledge of IT networking and cybersecurity concepts is necessary.

Recent experience with SOC1, SOC2 and SOC3 reporting engagements is considered an asset.

Project Management: Strong project management and people management experience including ability to supervise staff.

Style: Collaborative, team-oriented, high-energy, self-motivated, smart, performance driven, multi-tasker, confident. A strong commitment to professional and client service excellence. Contributes to a fun, social and successful work environment.

Language: Ability to communicate clearly and effectively, both orally and in writing, in English. Proficiency in Spanish and/or French is considered an asset.

Invictus offers industry-competitive salaries, annual bonus opportunities, paid vacation and sick time, health and life insurance benefits, and professional development opportunities. Invictus is dedicated to helping all employees achieve work-life balance, valuing family and flexibility equally with professionalism and premier service.